-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 07 Aug 2012 10:55:17 +0200 Source: chromium-browser Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-browser-inspector chromium chromium-dbg chromium-l10n chromium-inspector Architecture: source all amd64 Version: 21.0.1180.57~r148591-1 Distribution: unstable Urgency: medium Maintainer: Debian Chromium Maintainers <pkg-chromium-maint@lists.alioth.debian.org> Changed-By: Giuseppe Iuculano <iuculano@debian.org> Description: chromium - Google's open source chromium web browser chromium-browser - Chromium browser - transitional dummy package chromium-browser-dbg - chromium-browser debug symbols transitional dummy package chromium-browser-inspector - page inspector for the chromium-browser - transitional dummy pack chromium-browser-l10n - chromium-browser language packages - transitional dummy package chromium-dbg - Debugging symbols for the chromium web browser chromium-inspector - page inspector for the chromium browser chromium-l10n - chromium-browser language packages Changes: chromium-browser (21.0.1180.57~r148591-1) unstable; urgency=medium . * [fd04758] Install demo extension * New upstream stable release: - Medium CVE-2012-2846: Cross-process interference in renderers. Credit to Google Chrome Security Team (Julien Tinnes). - Low CVE-2012-2847: Missing re-prompt to user upon excessive downloads. Credit to Matt Austin of Aspect Security. - Medium CVE-2012-2848: Overly broad file access granted after drag+drop. Credit to Matt Austin of Aspect Security. - Low CVE-2012-2849: Off-by-one read in GIF decoder. Credit to Atte Kettunen of OUSPG. - Medium CVE-2012-2853: webRequest can interfere with the Chrome Web Store. Credit to Trev of Adblock. - Low CVE-2012-2854: Leak of pointer values to WebUI renderers. Credit to Nasko Oskov of the Chromium development community. - High CVE-2012-2855: Use-after-free in PDF viewer. Credit to Mateusz Jurczyk of Google Security Team, with contributions by Gynvael Coldwind of Google Security Team. - High CVE-2012-2857: Use-after-free in CSS DOM. Credit to - Arthur Gerkis. - High CVE-2012-2858: Buffer overflow in WebP decoder. Credit to Jüri Aedla. - Critical CVE-2012-2859: Crash in tab handling. Credit to Jeff Roberts of Google Security Team. - Medium CVE-2012-2860: Out-of-bounds access when clicking in date picker. Credit to Chamal de Silva. Checksums-Sha1: eb35b8157c3080f92b22e338bb0695ad2690aeca 3053 chromium-browser_21.0.1180.57~r148591-1.dsc a6bf64220215c0bfe27e586b104fb6da2a7e2030 538448800 chromium-browser_21.0.1180.57~r148591.orig.tar.bz2 acdb30e4c3404092ad38782e75b47c458c05975b 250858 chromium-browser_21.0.1180.57~r148591-1.debian.tar.gz 96825d6df1a8692f7e48f84a878e8f10bbbffe6a 155930 chromium-browser_21.0.1180.57~r148591-1_all.deb 62462cbe21d6cbb7ac4efc52ac12ea7eea413d83 155292 chromium-browser-dbg_21.0.1180.57~r148591-1_all.deb 8b32e3b65398806bdeb54ce7709c5984bdcb0061 155414 chromium-browser-l10n_21.0.1180.57~r148591-1_all.deb dcb411df618b1c526d2a8372edb0092b5684c6d7 155332 chromium-browser-inspector_21.0.1180.57~r148591-1_all.deb c1cd4cbba199fd362c9b2d946e36d8ce1a912b5a 2257604 chromium-l10n_21.0.1180.57~r148591-1_all.deb 9acc8eecba3cb0bbb16d685bbf35bc646a0bcb76 732550 chromium-inspector_21.0.1180.57~r148591-1_all.deb 755cf4b5b001a075c51c57d9bcb0a5694e43945c 34058060 chromium_21.0.1180.57~r148591-1_amd64.deb 5e0e0ad8942818f841e8f53544f4aed6ffc64efa 361462842 chromium-dbg_21.0.1180.57~r148591-1_amd64.deb Checksums-Sha256: 5b0c2d68c7915919c6144f7c74810ea5b07b240554b76b466c19a91f8b116555 3053 chromium-browser_21.0.1180.57~r148591-1.dsc 3e1571e8be886efadf5796e683d2307c7633f28809f96447121360f0e4d27a2a 538448800 chromium-browser_21.0.1180.57~r148591.orig.tar.bz2 8d9f1b1e0345c94519041a768c344bfa3924a7080295a6853707741b31e6384f 250858 chromium-browser_21.0.1180.57~r148591-1.debian.tar.gz f2949a60e5508fdcd121be88a083daa768438ff09638b666bc95fc85aed07b00 155930 chromium-browser_21.0.1180.57~r148591-1_all.deb 8e61fe1f27e35ac7200b4fab0eec5e8379ec4734a7156d09721ea5155b6248fb 155292 chromium-browser-dbg_21.0.1180.57~r148591-1_all.deb 2720e24309364a89d66c6fb2a223b72f102ce1fe3babe4455a333af99b4db73a 155414 chromium-browser-l10n_21.0.1180.57~r148591-1_all.deb 2dd51f9de42ae88674c931e2e9a14ceb3177062ba3f4459e0bd6bb8172279181 155332 chromium-browser-inspector_21.0.1180.57~r148591-1_all.deb d32a919b8f2aed054dc9de7d19508911751cc223e6c973a7e3c6e0decf8bcea7 2257604 chromium-l10n_21.0.1180.57~r148591-1_all.deb 868e18abed080a06a1378b89007bbfc64158b6f899f40380ca00616c216caabc 732550 chromium-inspector_21.0.1180.57~r148591-1_all.deb 489cd27e1338e76a8a6305f02ca9f9e4cc8b834caac7fc8217fb539ad0545e28 34058060 chromium_21.0.1180.57~r148591-1_amd64.deb 3e760958fc68cacc7296e0ec22b5d41742ae252cf84e698e98add5258886a2f3 361462842 chromium-dbg_21.0.1180.57~r148591-1_amd64.deb Files: e32cfe4d02cd613de35a6c0315c74111 3053 web optional chromium-browser_21.0.1180.57~r148591-1.dsc 63577b6d54b37208070c8184a7e50e46 538448800 web optional chromium-browser_21.0.1180.57~r148591.orig.tar.bz2 265888c8c7795c46c0dbf8f164c03a65 250858 web optional chromium-browser_21.0.1180.57~r148591-1.debian.tar.gz c5f981ebde23de2a50f3f136ef7122b1 155930 oldlibs optional chromium-browser_21.0.1180.57~r148591-1_all.deb e001b473e92cfa3f8df4cd09241f5b66 155292 oldlibs extra chromium-browser-dbg_21.0.1180.57~r148591-1_all.deb 8c0bfdb065288f3fba84c433d9d13324 155414 oldlibs optional chromium-browser-l10n_21.0.1180.57~r148591-1_all.deb e30f0a800b85e631db82be58309cc766 155332 oldlibs optional chromium-browser-inspector_21.0.1180.57~r148591-1_all.deb 79023e7972e96e01573290629df591be 2257604 web optional chromium-l10n_21.0.1180.57~r148591-1_all.deb d09bc864a1a3578c5410e5a5bd5eb985 732550 web optional chromium-inspector_21.0.1180.57~r148591-1_all.deb 36d512385e5c54ab4312e15acacf0cde 34058060 web optional chromium_21.0.1180.57~r148591-1_amd64.deb 74d4992c039e6890f5a035d72a927cbc 361462842 debug extra chromium-dbg_21.0.1180.57~r148591-1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlAg5j4ACgkQNxpp46476aob/wCfSzu4lgWAhAZiG4wpT39zntn7 Yz8An2hNy/6zGPnhW2KmN0lEQrFprQY3 =YpIr -----END PGP SIGNATURE-----